At StrongLoop, we take security very seriously. We make every effort to ensure the security of StrongLoop-supported modules, and to fix any vulnerabilities or provide workarounds as soon as possible.
These are important advisories about known security issues:
How to report a security issue
If you think you have discovered a new security issue with any StrongLoop package, please do not report it on GitHub. Instead, send an email to firstname.lastname@example.org with a full description and steps to reproduce.